Vulnerabilities and Security Researches

Advanced Woo Search, CVE-2020-12070

CVE, Research URL: CVE-2020-12070
Home page URL: Security reports for Advanced Woo Search
Application: Advanced Woo Search
Published on: Apr 25, 2020
Research Description: The Advanced Woo Search plugin version through 1.99 for Wordpress suffers from a sensitive information disclosure vulnerability in every ajax search request via the sql field to includes/class-aws-search.php.
Affected versions: max 1.70.
Status: vulnerable